SQL-Ledger Vulnerability Allows Remote Administrative Access by Unauthorized Users
CVE-2009-4402

Currently unrated

Key Information:

Vendor: Sql-ledger
Status: Sql-ledger
Vendor: CVE Published:; 23 December 2009

What is CVE-2009-4402?

The default configuration of SQL-Ledger version 2.8.24 is susceptible to a security flaw that permits remote attackers to execute unspecified administrative functions through the admin interface by using any arbitrary password. This vulnerability highlights the importance of securing admin interfaces against unauthorized access and implementing stronger password authentication methods.

References

http://www.securityfocus.com/archive/1/508559/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://secunia.com/advisories/37877

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/37431

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 23, 2009
Vulnerability Reserved
Dec 23, 2009

CVE-2009-4402 Data

JSON

Sql-ledger

What is CVE-2009-4402?

References

Timeline